$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/3F3E2A10CC6411EDA7970484C4F9AE02.roa File: 3F3E2A10CC6411EDA7970484C4F9AE02.roa (raw, json) Hash identifier: eriFodfCyIydllX/PPnDpd8lbKGz4kFd46Tr+4btP+Y= Subject key identifier: 57:4E:4A:6C:A9:A5:4C:02:15:6D:E2:8F:4A:15:6B:6E:EF:86:44:AB Certificate issuer: /CN=A91D1200/serialNumber=38C0B1C58D00DE3F73AD5B5887D4249BDEE7BBA2 Certificate serial: BD Authority key identifier: 38:C0:B1:C5:8D:00:DE:3F:73:AD:5B:58:87:D4:24:9B:DE:E7:BB:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OMCxxY0A3j9zrVtYh9Qkm97nu6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/3F3E2A10CC6411EDA7970484C4F9AE02.roa Signing time: Thu 07 Mar 2024 03:18:36 +0000 ROA not before: Thu 07 Mar 2024 03:18:36 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134673 IP address blocks: 202.27.212.0/24 maxlen: 24 202.27.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/OMCxxY0A3j9zrVtYh9Qkm97nu6I.crl rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/OMCxxY0A3j9zrVtYh9Qkm97nu6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OMCxxY0A3j9zrVtYh9Qkm97nu6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1200/serialNumber=38C0B1C58D00DE3F73AD5B5887D4249BDEE7BBA2 Validity Not Before: Mar 7 03:18:36 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65e9320c-d09f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:69:03:8a:39:5a:ef:cf:93:0f:23:85:43:9b: 4d:42:a9:84:9e:41:0c:d6:14:51:66:7a:4e:cc:59: fa:5a:31:83:91:b4:3b:4c:73:07:d4:6d:23:ed:81: 52:95:5b:5b:d3:72:0e:ff:9c:a8:30:db:18:2f:bc: 81:3f:71:19:9c:ca:d8:87:d0:8d:c4:0d:6b:fc:69: 7a:b7:0b:e7:42:cc:cb:2f:16:ce:ef:8a:ad:48:76: ca:20:4d:36:c0:09:98:8e:4e:da:aa:24:15:c7:e7: 70:1f:da:af:ad:14:2c:c4:b7:0f:21:2c:6a:9f:89: d0:20:68:69:6a:99:03:16:6b:40:00:85:57:b1:55: bb:eb:fa:e6:f3:8e:8b:82:e4:84:70:fb:b4:f6:b0: 1a:f8:09:f4:93:92:89:f5:c3:aa:7b:a6:f3:09:bb: f8:90:fb:3e:fc:20:15:29:0a:95:bf:33:88:d8:8b: 59:60:10:d3:2a:a8:b0:56:6a:0b:be:7b:bc:fb:42: c3:3e:a1:04:5d:ef:00:ae:08:fa:63:3f:eb:19:87: 1b:03:3b:38:6b:df:52:5b:ed:85:ae:55:54:ed:72: e8:ee:ef:5a:41:e8:17:3d:97:65:f4:9d:b3:82:68: 08:fe:a0:dc:10:fd:21:8c:1c:87:ee:b2:bd:9f:96: 82:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4E:4A:6C:A9:A5:4C:02:15:6D:E2:8F:4A:15:6B:6E:EF:86:44:AB X509v3 Authority Key Identifier: keyid:38:C0:B1:C5:8D:00:DE:3F:73:AD:5B:58:87:D4:24:9B:DE:E7:BB:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/OMCxxY0A3j9zrVtYh9Qkm97nu6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OMCxxY0A3j9zrVtYh9Qkm97nu6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/3F3E2A10CC6411EDA7970484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.212.0/24 202.27.247.0/24 Signature Algorithm: sha256WithRSAEncryption 51:0e:d1:05:a0:44:eb:b3:8c:ff:8b:56:c6:9e:37:c4:49:69: 50:97:97:07:75:41:ba:a9:4c:8d:2b:1e:ed:91:52:cf:ee:10: a1:35:1b:10:ce:c5:ae:cb:f6:d4:62:32:b4:73:96:ca:9e:19: 68:6f:1f:3b:34:a5:89:aa:01:e4:08:61:91:25:2f:fb:6b:cc: 42:4b:e9:7d:fd:c9:c0:40:d0:20:41:d6:81:83:03:a5:ac:3a: ac:49:24:ec:0f:ea:e5:67:7c:38:9c:a1:c5:6a:1c:19:36:7c: a9:c7:7c:97:1d:47:0a:5b:0b:ea:34:e7:b8:3a:86:78:ee:06: 81:46:ce:39:7b:e7:4f:f8:df:15:d3:1c:fb:8d:34:8a:f6:3e: 14:b8:1d:f7:bf:2e:a3:9e:71:95:74:58:2e:a9:aa:0d:be:c6: 55:e5:4b:e3:26:7c:c7:ab:1b:d1:fd:31:04:9c:cf:54:9e:51: c8:19:96:4d:c2:3f:68:42:4e:66:7b:4b:f5:87:fc:9d:9b:9b: 1a:b6:8c:2e:d7:a2:6e:14:50:29:10:05:e2:8b:4e:aa:9d:db: 64:b9:19:86:78:c6:72:b0:22:80:f4:9c:cb:a0:8d:8e:0f:43: 5c:ab:23:29:ac:14:db:8d:3f:01:69:00:69:6f:4e:40:22:71: 89:e6:7a:49 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMDAxMTAvBgNVBAUTKDM4QzBCMUM1OEQwMERFM0Y3M0FENUI1ODg3RDQyNDlC REVFN0JCQTIwHhcNMjQwMzA3MDMxODM2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU5MzIwYy1kMDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mkDijla78+TDyOFQ5tNQqmEnkEM1hRRZnpOzFn6WjGDkbQ7THMH1G0j7YFS lVtb03IO/5yoMNsYL7yBP3EZnMrYh9CNxA1r/Gl6twvnQszLLxbO74qtSHbKIE02 wAmYjk7aqiQVx+dwH9qvrRQsxLcPISxqn4nQIGhpapkDFmtAAIVXsVW76/rm846L guSEcPu09rAa+An0k5KJ9cOqe6bzCbv4kPs+/CAVKQqVvzOI2ItZYBDTKqiwVmoL vnu8+0LDPqEEXe8Argj6Yz/rGYcbAzs4a99SW+2FrlVU7XLo7u9aQegXPZdl9J2z gmgI/qDcEP0hjByH7rK9n5aCFQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFdOSmyp pUwCFW3ij0oVa27vhkSrMB8GA1UdIwQYMBaAFDjAscWNAN4/c61bWIfUJJve57ui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIwMC9GNUE5NTJFMEND MDMxMUVEQTk3QUNBNURDNEY5QUUwMi9PTUN4eFkwQTNqOXpyVnRZaDlRa205N251 NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09NQ3h4WTBBM2o5enJWdFloOVFrbTk3bnU2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMDAvRjVBOTUyRTBDQzAzMTFFREE5N0FDQTVEQzRGOUFFMDIvM0YzRTJBMTBD QzY0MTFFREE3OTcwNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKG9QDBADKG/cwDQYJKoZIhvcNAQELBQADggEBAFEO0QWg ROuzjP+LVsaeN8RJaVCXlwd1QbqpTI0rHu2RUs/uEKE1GxDOxa7L9tRiMrRzlsqe GWhvHzs0pYmqAeQIYZElL/trzEJL6X39ycBA0CBB1oGDA6WsOqxJJOwP6uVnfDic ocVqHBk2fKnHfJcdRwpbC+o057g6hnjuBoFGzjl750/43xXTHPuNNIr2PhS4Hfe/ LqOecZV0WC6pqg2+xlXlS+MmfMerG9H9MQScz1SeUcgZlk3CP2hCTmZ7S/WH/J2b mxq2jC7Xom4UUCkQBeKLTqqd22S5GYZ4xnKwIoD0nMugjY4PQ1yrIymsFNuNPwFp AGlvTkAicYnmekk= -----END CERTIFICATE-----Generated at Thu Jun 13 06:58:58 2024 by rpki-client on console-fra.rpki-client.org